JavaScriptExample
diff --git a/‎src/SigninResponseError.js‎ ‎src/ErrorResponse.js‎src/SigninResponseError.js renamed to src/ErrorResponse.js
Lines changed: 3 additions & 3 deletions b/‎src/SigninResponseError.js‎ ‎src/ErrorResponse.js‎src/SigninResponseError.js renamed to src/ErrorResponse.js
Lines changed: 3 additions & 3 deletions
diff --git a/‎src/OidcClientService.js‎
Lines changed: 22 additions & 0 deletions b/‎src/OidcClientService.js‎
Lines changed: 22 additions & 0 deletions
diff --git a/‎src/ResponseValidator.js‎
Lines changed: 50 additions & 28 deletions b/‎src/ResponseValidator.js‎
Lines changed: 50 additions & 28 deletions
diff --git a/‎src/SigninResponse.js‎
Lines changed: 2 additions & 2 deletions b/‎src/SigninResponse.js‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/SignoutResponse.js‎
Lines changed: 23 additions & 0 deletions b/‎src/SignoutResponse.js‎
Lines changed: 23 additions & 0 deletions
diff --git a/‎test/SigninResponseError.spec.js‎ ‎test/ErrorResponse.spec.js‎test/SigninResponseError.spec.js renamed to test/ErrorResponse.spec.js
Lines changed: 12 additions & 12 deletions b/‎test/SigninResponseError.spec.js‎ ‎test/ErrorResponse.spec.js‎test/SigninResponseError.spec.js renamed to test/ErrorResponse.spec.js
Lines changed: 12 additions & 12 deletions
@@ -1,11 +1,11 @@
 import Log from './Log';
 import UrlUtility from './UrlUtility';
 
-export default class SigninResponseError {
+export default class ErrorResponse {
     constructor({error, error_description, error_uri, state}={}
     ) {
          if (!error){
-            Log.error("No error passed to SigninResponseError");
+            Log.error("No error passed to ErrorResponse");
             throw new Error("error");
         }
 
@@ -21,7 +21,7 @@ export default class SigninResponseError {
         return this.error_description || this.error;
     }
     get name(){
-        return "SigninResponseError";
+        return "ErrorResponse";
     }
     get stack(){
         return this._stack;
 
@@ -4,6 +4,7 @@ import MetadataService from './MetadataService';
 import SigninRequest from './SigninRequest';
 import SigninResponse from './SigninResponse';
 import SignoutRequest from './SignoutRequest';
+import SignoutResponse from './SignoutResponse';
 import WebStorageStateStore from './WebStorageStateStore';
 import ResponseValidator from './ResponseValidator';
 
@@ -122,6 +123,27 @@ export default class OidcClientService {
     processSignoutResponse(url){
         Log.info("OidcClientService.processSignoutResponse");
 
+        var response = new SignoutResponse(url);
+        if (!response.state) {
+            Log.error("No state in response");
+            return Promise.reject(new Error("No state in response"));
+        }
+        
+        var stateKey = response.state;
+        
+        return this._stateStore.remove(stateKey).then(state => {
+            if (!state){
+                Log.error("No matching state found in storage");
+                throw new Error("Failed to process response");
+            }
+            
+            Log.info("Received state from storage; validating response");
+            return this._validator.validateSignoutResponse(state, response);
+            
+        }, err => {
+            Log.error("Failed to process response", err);
+            return Promise.reject(new Error("Failed to process response"));
+        });
     }
 
 // OidcClient.prototype.processResponseAsync = function (queryString) {
 
@@ -20,21 +20,43 @@ export default class ResponseValidator {
     validateSigninResponse(state, response) {
         Log.info("ResponseValidator.validateSigninResponse");
 
-        return this.processState(state, response).then(response => {
+        return this.processSigninParams(state, response).then(response => {
             Log.info("state processed");
             return this.validateTokens(state, response).then(response => {
                 Log.info("tokens validated");
-                return this.processClaims(response).then(response=>{
+                return this.processClaims(response).then(response => {
                     Log.info("claims processed");
                     return response;
                 });
             });
         });
     }
 
-    processState(state, response){
-        Log.info("ResponseValidator.processState");
+    validateSignoutResponse(state, response) {
+        Log.info("ResponseValidator.validateSignoutResponse");
+
+        if (state.id !== response.state) {
+            Log.error("State does not match");
+            return Promise.reject(new Error("State does not match"));
+        }
+
+        // now that we know the state matches, take the stored data
+        // and set it into the response so callers can get their state
+        // this is important for both success & error outcomes
+        Log.info("state validated");
+        response.state = state.data;
+
+        if (response.error) {
+            Log.warn("Response was error", response.error);
+            return Promise.reject(response);
+        }
 
+        return Promise.resolve(response);
+    }
+    
+    processSigninParams(state, response) {
+        Log.info("ResponseValidator.processSigninParams");
+
         if (state.id !== response.state) {
             Log.error("State does not match");
             return Promise.reject(new Error("State does not match"));
@@ -60,13 +82,13 @@ export default class ResponseValidator {
             Log.error("Not expecting id_token in response");
             return Promise.reject(new Error("Unexpected id_token in response"));
         }
-        
+
         return Promise.resolve(response);
     }
-    
-    processClaims(response){
+
+    processClaims(response) {
         Log.info("ResponseValidator.processClaims");
-        
+
         response.profile = this.filterProtocolClaims(response.profile);
 
         // if (this._settings.loadUserInfo) {
@@ -84,24 +106,6 @@ export default class ResponseValidator {
         return Promise.resolve(response);
     }
 
-    validateTokens(state, response) {
-        Log.info("ResponseValidator.validateTokens");
-        
-        if (response.id_token) {
-
-            if (response.access_token) {
-                Log.info("Validating id_token and access_token");
-                return this.validateIdTokenAndAccessToken(state, response);
-            }
-
-            Log.info("Validating id_token");
-            return this.validateIdToken(state, response);
-        }
-        
-        Log.info("No id_token to validate");
-        return Promise.resolve(response);
-    }
-
     // mergeClaims(claims1, claims2){
     //     return claims1;
     // }
@@ -119,17 +123,35 @@ export default class ResponseValidator {
         return claims;
     }
 
+    validateTokens(state, response) {
+        Log.info("ResponseValidator.validateTokens");
+
+        if (response.id_token) {
+
+            if (response.access_token) {
+                Log.info("Validating id_token and access_token");
+                return this.validateIdTokenAndAccessToken(state, response);
+            }
+
+            Log.info("Validating id_token");
+            return this.validateIdToken(state, response);
+        }
+
+        Log.info("No id_token to validate");
+        return Promise.resolve(response);
+    }
+
     validateIdTokenAndAccessToken(state, response) {
         Log.info("ResponseValidator.validateIdTokenAndAccessToken");
-        
+
         return this.validateIdToken(state, response).then(response => {
             return this.validateAccessToken(response);
         });
     }
 
     validateIdToken(state, response) {
         Log.info("ResponseValidator.validateIdToken");
-        
+
         return Promise.resolve(response);
 
         //     log("OidcClient.validateIdTokenAsync");
 
@@ -1,14 +1,14 @@
 import Log from './Log';
 import UrlUtility from './UrlUtility';
-import SigninResponseError from './SigninResponseError';
+import ErrorResponse from './ErrorResponse';
 
 export default class SigninResponse {
     constructor(url) {
 
         var values = UrlUtility.parseUrlFragment(url);
 
         if (values.error){
-            return new SigninResponseError(values);
+            return new ErrorResponse(values);
         }
 
         this._state = values.state;
 
@@ -0,0 +1,23 @@
+import Log from './Log';
+import UrlUtility from './UrlUtility';
+import ErrorResponse from './ErrorResponse';
+
+export default class SignoutResponse {
+    constructor(url) {
+        
+        var values = UrlUtility.parseUrlFragment(url);
+        
+        if (values.error){
+            return new ErrorResponse(values);
+        }
+        
+        this._state = values.state;
+    }
+    
+    get state(){
+        return this._state;
+    }
+    set state(value){
+        this._state = value;
+    }
+}
@@ -1,18 +1,18 @@
 import Log from '../src/Log';
-import SigninResponseError from '../src/SigninResponseError';
+import ErrorResponse from '../src/ErrorResponse';
 
 import chai from 'chai';
 chai.should();
 let assert = chai.assert;
 let expect = chai.expect;
 
-describe("SigninResponseError", function() {
+describe("ErrorResponse", function() {
 
     describe("constructor", function() {
 
         it("should require a error param", function() {
             try {
-                new SigninResponseError({});
+                new ErrorResponse({});
             }
             catch (e) {
                 e.message.should.contain('error');
@@ -22,51 +22,51 @@ describe("SigninResponseError", function() {
         });
 
         it("should read error", function() {
-            let subject = new SigninResponseError({error:"foo"});
+            let subject = new ErrorResponse({error:"foo"});
             subject.error.should.equal("foo");
         });
 
         it("should read error_description", function() {
-            let subject = new SigninResponseError({error:"error", error_description:"foo"});
+            let subject = new ErrorResponse({error:"error", error_description:"foo"});
             subject.error_description.should.equal("foo");
         });
 
         it("should read error_uri", function() {
-            let subject = new SigninResponseError({error:"error", error_uri:"foo"});
+            let subject = new ErrorResponse({error:"error", error_uri:"foo"});
             subject.error_uri.should.equal("foo");
         });
 
         it("should read state", function() {
-            let subject = new SigninResponseError({error:"error", state:"foo"});
+            let subject = new ErrorResponse({error:"error", state:"foo"});
             subject.state.should.equal("foo");
         });
     });
 
     describe("message", function() {
         it("should be description if set", function() {
-            let subject = new SigninResponseError({error:"error", error_description:"foo"});
+            let subject = new ErrorResponse({error:"error", error_description:"foo"});
             subject.message.should.equal("foo");
         });
 
         it("should be error if description not set", function() {
-            let subject = new SigninResponseError({error:"error"});
+            let subject = new ErrorResponse({error:"error"});
             subject.message.should.equal("error");
         });
 
     });
 
     describe("name", function() {
         it("should be class name", function() {
-            let subject = new SigninResponseError({error:"error"});
-            subject.name.should.equal("SigninResponseError");
+            let subject = new ErrorResponse({error:"error"});
+            subject.name.should.equal("ErrorResponse");
         });
 
     });
 
     describe("stack", function() {
 
         it("should be set", function() {
-            let subject = new SigninResponseError({error:"error"});
+            let subject = new ErrorResponse({error:"error"});
             subject.stack.should.be.ok;
         });